Google Cloud Platform Security

Security for Cloud Native Apps on GCP

Enterprises using Google Cloud Platform to build, manage, and run their containers and serverless apps also leverage Twistlock to provide complete security of their environments. Twistlock ensures that images and containers are free of vulnerabilities and compliance policies are implemented, while runtime protection and cloud native firewalls secure your environment and networks from active threats. Twistlock is proud to be an official Google Cloud Platform Security Partner.

Vulnerability Prevention from Development to Runtime

Twistlock detects vulnerabilities in your images throughout their lifecycle, from the beginning of the CI process, to your registries, to all your production deployments on Google Compute Engine (GCE) and Google Kubernetes Engine (GKE). By integrating with Google Container Registry (GCR) and Google Container Builder (GCB), Twistlock provides immediate vulnerability status and enforcement as your developers build and ship images.

Compliance Across the Application Lifecycle

With compliance rules covering over 300 security best practices and pre-built policy templates for specific regulations like HIPAA, PCI, GDPR, and NIST SP 800-190, Twistlock can automatically enforce compliance from build to runtime. Twistlock is the only platform that continuously monitors your hosts, images, and containers for compliance.

Integrated with Cloud Security Command Center

Seamlessly send vulnerability and compliance data, runtime security alerts, firewalling events, and more from Twistlock to Google Cloud Security Command Center. Twistlock provides a native integration so you can easily access any data you prefer in GCSCC.

Risk Prioritization Tailored to Your Environment

Twistlock ranks vulnerabilities and compliance issues by leveraging our proprietary risk score, a combination of CVSS score and metrics about your specific environment, so you can measure and prioritize remediation of top risks. The Twistlock Intelligence Stream ensures the most precise, layer-aware, vulnerability analysis with zero false positives.

Security for Google Cloud Functions

Twistlock automatically discovers all the functions in your accounts, analyzes them to identify vulnerable components, and helps you understand relative risk by including advanced metadata, such as attack vector, complexity, and whether exploits exist in the wild.

“Twistlock enables us to pinpoint vulnerabilities, block attacks, and easily enforce compliance across our environment – giving our team the visibility and control needed to run containers at scale.”